How to query Array of Objects

prathako · April 7, 2020, 6:25pm

Mapping:

{
   "log":{
      "properties":{
         "detail":{
            "type":"nested",
            "properties":{
               "attribute":{
                  "type":"text",
                  "fields":{
                     "keyword":{
                        "type":"keyword",
                        "ignore_above":256
                     }
                  }
               },
               "newValue":{
                  "type":"text",
                  "fields":{
                     "keyword":{
                        "type":"keyword",
                        "ignore_above":256
                     }
                  }
               }
            }
         },
         "source":{
            "type":"text",
            "fields":{
               "keyword":{
                  "type":"keyword",
                  "ignore_above":256
               }
            }
         },
         "status":{
            "type":"text",
            "fields":{
               "keyword":{
                  "type":"keyword",
                  "ignore_above":256
               }
            }
         }
      }
   }

Data:

[
   {
      "_index":"audit_test_2",
      "_type":"log",
      "_id":"706yUXEBcaL3UicXEjIg",
      "_score":1.6486586,
      "_source":{
         "status":"Successful",
         "source":"Control Room",
         "detail":[
            {
               "attribute":"Name",
               "oldValue":null,
               "newValue":"Folder1"
            },
            {
               "attribute":"Version",
               "oldValue":null,
               "newValue":"2.0.0-20200114-060012"
            },
            {
               "attribute":"Status",
               "oldValue":null,
               "newValue":"DISABLED"
            }
         ]
      }
   },
   {
      "_index":"audit_test_2",
      "_type":"log",
      "_id":"8E6yUXEBcaL3UicXIzK0",
      "_score":1.6486586,
      "_source":{
         "status":"Successful",
         "source":"Control Room",
         "detail":[
            {
               "attribute":"Name",
               "oldValue":null,
               "newValue":"Folder2"
            },
            {
               "attribute":"Version",
               "oldValue":null,
               "newValue":"2.0.0-20200114-060012"
            },
            {
               "attribute":"Status",
               "oldValue":null,
               "newValue":"DISABLED"
            }
         ]
      }
   }
]

My current query:

{
  "query": {
    "nested": {
      "path": "detail",
      "query": {
        "bool": {
          "must": [
            {
              "match": {
                "detail.newValue.keyword": "DISABLED"
              }
            }
          ]
        }
      }
    }
  }
}

How can I modify the query to get the result of one JSON object having "newValue": "Folder1" && "newValue": "DISABLED"? The above query expectedly returns both objects.

system · May 5, 2020, 6:25pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Query Nested Array Elasticsearch	1	329	November 2, 2020
Query based on array items satisfiying certain criteria Elasticsearch	2	333	September 9, 2019
How to search in array of objects Elasticsearch	3	794	March 26, 2020
Querying nested objects Elasticsearch	4	304	January 12, 2022
Querying OR filtering on a nested object Elasticsearch	2	374	July 6, 2017

How to query Array of Objects

Related topics